Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

GR: Parse paths in npmrc auth fields correctly #901

Merged
merged 4 commits into from
Apr 10, 2024
Merged

GR: Parse paths in npmrc auth fields correctly #901

merged 4 commits into from
Apr 10, 2024

Conversation

michaelkedar
Copy link
Member

Should fix #899
Changed the npmrc parsing logic when using --data-source=native so that specifying registries with paths (e.g. //my.registry/package/path:_authToken) will now correctly add the authorization headers.

Used npm-registry-fetch as reference.

@codecov-commenter
Copy link

codecov-commenter commented Apr 5, 2024
edited
Loading

Codecov Report

Attention: Patch coverage is 80.88235% with 13 lines in your changes are missing coverage. Please review.

Project coverage is 63.34%. Comparing base (ca67f63) to head (ae58a7f).

Files Patch % Lines
internal/resolution/datasource/npmrc.go 87.09% 6 Missing and 2 partials ⚠️
...ternal/resolution/datasource/npm_registry_cache.go 0.00% 5 Missing ⚠️
Additional details and impacted files 
@@            Coverage Diff             @@
##             main     #901      +/-   ##
==========================================
- Coverage   63.37%   63.34%   -0.04%     
==========================================
  Files         145      145              
  Lines       11883    11873      -10     
==========================================
- Hits         7531     7521      -10     
  Misses       3885     3885              
  Partials      467      467

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

oliverchang
oliverchang reviewed Apr 8, 2024
View reviewed changes
Copy link
Collaborator

@oliverchang oliverchang left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

nice! just some minor comments.

internal/resolution/datasource/npmrc.go Show resolved Hide resolved
internal/resolution/datasource/npm_registry_cache.go Outdated Show resolved Hide resolved
internal/resolution/datasource/npmrc_test.go Outdated Show resolved Hide resolved
@oliverchang oliverchang mentioned this pull request Apr 8, 2024
Closed
another-rex
another-rex approved these changes Apr 9, 2024
View reviewed changes
internal/resolution/datasource/npmrc.go
func (info npmRegistryInfo) buildRequest(ctx context.Context, urlComponents ...string) (*http.Request, error) {
for i := range urlComponents {
urlComponents[i] = url.PathEscape(urlComponents[i])
var npmAuthFields = [...]string{":_authToken", ":_auth", ":username", ":_password"} // reference of the relevant config key suffixes
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

What does the ... mean in the [...]?

Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It sets the length of the array based on the number of dots (so in this case 3); my understanding is it's a shortcut make

Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

hmm... but there's 4 elements in the slice?

Copy link
Member Author

@michaelkedar michaelkedar Apr 10, 2024
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It means an array with length equal to the number of elements defined:
From the go spec:

The length of an array literal is the length specified in the literal type. If fewer elements than the length are provided in the literal, the missing elements are set to the zero value for the array element type. It is an error to provide elements with index values outside the index range of the array. The notation ... specifies an array length equal to the maximum element index plus one.

buffer := [10]string{}             // len(buffer) == 10
intSet := [6]int{1, 2, 3, 5}       // len(intSet) == 6
days := [...]string{"Sat", "Sun"}  // len(days) == 2

@michaelkedar michaelkedar merged commit 0280abf into google:main Apr 10, 2024
12 checks passed
@michaelkedar michaelkedar deleted the npm-auth branch April 10, 2024 03:31
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@G-Rath G-Rath G-Rath left review comments

@another-rex another-rex another-rex approved these changes

@oliverchang oliverchang oliverchang approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Guided remediation for npm (osv-scanner fix) failed to resolve private dependencies
5 participants
@michaelkedar @codecov-commenter @oliverchang @G-Rath @another-rex